December November CucinottaA. Meroni, V. July April CucinottaI. October August Cucinotta, A. June CucinottaIvan Bedini. Last updated on 05 July The S o OS Project Service-oriented Operating Systems addresses the needs of high-performance and distributed systems of the future: performance will rely on a parallelism degree which cannot be even imagined nowadays, with thousands of heterogeneous computing elements networked within each single chip, and thousands or milions of machines interconnected by next-generation networks.

The nowadays programming models, Operating System interfaces and architectures cannot scale to such parallelism degree levels. They are simply inadequate for an efficient use of the resources available to the applications of tomorrow. S o OS will shed some light on these issues designing innovative and highly scalable Operating System Models and Architectures, relying on concepts drawn from the domain of Service-Oriented Architectures SOA and GRID computing, encompassing in a holistic view the software layers that go from the application programmer to the kernel developer.

Within the project, we developed a real-time SMP scheduler for the Linux kernel. For more information, refer to the relative article appeared on lwn. ARSim is an open-source tool for the simulation of systems composed of multiple resources managed through adaptive reservation schemes, shared among multiple tasks. A modular architecture allows for modeling various types of task workloads, as well as various control policies.

This paper presents an architecture for Quality of Service QoS control of time- sensitive applications in multi-programmed embedded systems. In such systems, tasks must receive appropriate timeliness guarantees from the Operating System independently from one another, otherwise the QoS experienced by users may decrease.

Moreover, fluctuations in time of the workloads make a static partitioning of the CPU not appropriate nor convenient, whereas an adaptive allocation based on an on-line monitoring of the application behaviour leads to an optimum design. By combining a resource reservation scheduler and a feedback based mechanism, we allow applications to meet their QoS requirements with the minimum possible impact on CPU occupation.

We implemented the framework in AQuoSA [8], a software architecture that runs on top of the Linux kernel. We provide extensive experimental validation of our results and offer evaluation of the introduced overhead, which is perfectly sustainable in the class of addressed applications. They are based on a "bandwidth" abstraction, meaning that a task is given the illusion of executing on a dedicated slower processor. In this context, a crucial design issue is deciding the bandwidth that each task should receive.

The point we advocate is that, in presence of large fluctuations on the computation requirements of the tasks, it can be a beneficial choice to dynamically adapt the bandwidth based on QoS measurements and on the subsequent application of feedback control adaptive reservations.

In this paper, we present two novel contributions to this research area. First, we propose three new control algorithms inspired to the ideas of stochastic control. Second, we present a flexible and modular software architecture for adaptive reservations.

An important feature of this architecture is that it is realised by means of a minimally invasive set of modifications to the Linux kernel. The software is interoperable across multiple card devices, and portable across various open platforms. The architectural design is centred around the definition of a new API that allows protected access to the storage and cryptographic facilities of a smart card.

In the envisioned architecture, a smart card driver architecture is partitioned into a lower card-dependent component, that formats and exchanges APDUs with the external device, and a higher cardindependent component, that implements more sophisticated services and interfaces, such as the well known PKCS standard.

Each layer can focus on a smaller set of functionality, thus reducing the effort required for the development as well as the testing and maintenance of each component. The proposed architecture, along with a set of pilot applications such as secure remote shell, secure web services, local login and digital signature, has been developed and tested on various platforms, including Open BSD, Linux, Solaris and Mac OS X, proving effectiveness of the new approach.

The approach is based on the well-known texture vector and minutiae based techniques, where image processing and feature extraction occur on the host, while the card device performs the final match against the on-board template, which is never revealed to the outside world.

This increases security of the template itself and of the applications using it. The matching algorithms have been tuned in order to achieve an acceptable performance despite computation and memory constraints. Experimental results, gathered from our implementation on a Java Card device, highlight feasibility of the hybrid approach, and show to what extent it is possible to trade precision for speed in the verification process, with an appropriate tuning of the on-board matching parameters.

However, the high variability of the resource requirements hinders a static choice of the scheduling parameters. In this paper we address this problem by a combination of two strategies: adaptive reservations and resource reclaiming.

The first one operates "locally" using the information of a single taskthe second one operates "globally" distributing unused bandwidth between the tasks. In this paper, we show by analytical results and by extensive simulations that the two techniques can be safely and usefully combined.

Faggioli D. The goal is to guarantee that specified Quality of Service QoS requirements are met. To this end, we advocate the use of a scheduling mechanism able to reserve fraction of the different resources to the competing tasks. Our work is focused on a feedback controlled adaptation of these fractions based on measurements of the QoS experienced by the application. Each task has an execution time stochastically varying in time and it has to be provided with a specified level of Quality of Service QoS.

The problem of feedback control is formalised in the stochastic domain, by expressing QoS requirements in terms of properties to be satisfied by the stochastic process describing the evolution of the system state.

Last updated on 27 July This thesis project has been realized by Gabriele Ara in partial fulfillment of the requirements for the MSc in Embedded Computing Systems. In the domain of network operators, recent technological trends led to replacing traditional physical networking infrastructures with more flexible cloud-based systems, which can be dynamically instantiated on demand.

The paradigm represented by Network Function Virtualization NFV aims to replace most of the highly specialized hardware appliances that traditionally are used to build a network infrastructure with software-based Virtualized Network Functions VNFs to improve network flexibility.

A number of network functions need high-performance and low end-to-end latency. Primary research focus is now into reducing per-packet processing overheads by using user-space networking techniques, allowing applications to avoid the kernel when exchanging data between containers, either on the same machine or between different hosts.

These techniques are generally indicated as kernel bypass mechanisms. In this thesis, a benchmarking framework has been designed and realized, for the purpose of comparing different kernel bypass mechanisms that can be used to exchange data between VNFs deployed on OS containers within a private cloud infrastructure, to determine which is the most suitable to build efficient network infrastructures in the cloud. Among these mechanisms, this work focuses on the evaluation of the Data Plane Development Kit DPDK framework and other tools that are built on top of it e.

This thesis project has been realized by Francesco De Gioia in partial fulfillment of the requirements for the MSc in Embedded Computing Systems, during an internship at Cobham Gaisler Researchin Gothenburg Swedenunder the joint academic supervision of myself and prof. Luca Fanucci. The thesis project has been developed by Giacomo Bagnoli, modifying the JACK low-latency audio infrastructure for Linux, integrating it with AQuoSAa set of modifications to the Linux kernel adding an EDF-based real-time scheduling policy for real-time applications.

The work has also been published and presented at the Linux Audio Conference Queste si basano sul concetto di isolamento temporale delle applicazioni, garantito da opportune politiche di scheduling dei processi e thread da parte dello scheduler del sistema operativo. In questa tesi, si propone di studiare una soluzione che permetta di applicare tali tecnologie al contesto del playback di contenuti audio sul sistema operativo Linux, dove tipicamente il flusso di dati fornito dall'applicazione viene mediato da una serie di componenti software, sia a livello utente server audio personali per la gestione di flussi multiplisia a livello di kernel moduli del kernelche dovranno essere modificati per l'utilizzo di estensioni real-time.

Basi di sistemi operativi e scheduling basato su server, linguaggio C, interesse per le architetture di supporto al playback di contenuti audio, esperienza nella comprensione e modifica del codice di componenti software open-source scritte da altri.

Various smart-card devices or even higher-level APIs may be supported by adding plug-ins to the project. More information is available in the Andrea Angella master thesis.

Descrizione Il processo di sviluppo di software per smart-card continua ad essere particolarmente complesso per la mancanza di appropriati strumenti di supporto allo sviluppo e al debug, se non quelli proprietari messi a disposizione dai singoli fornitori di soluzioni, che comunque spesso sono artificiosamente non interoperabili per ragioni puramente commerciali. Il software dovrebbe permettere di visionare e gestire chiavi, certificati, PIN o file eventualmente residenti sul dispositivo, e di effettuare le varie operazioni di basso o alto livello rese disponibili dai diversi plugin installabili.

Emulation environment for JavaCard compliant smart-cards, allowing the execution of complete tests for solutions based on such platform in an absolutely transparent way.

Modular and expandable middleware for the management of group cryptographic keys in the multicast setting. Controlling end-to-end service quality, and particularly real-time performance and reliability, of time-sensitive applications in cloud environments is overly challenging.

The problem is even harder when trying to switch from the earlier world of network functions shipped as physical boxes, to the emerging paradigm of virtualized cloud-ready elastic network functions, where still the "5 9s" and tight sub-second real-time performance requirements as coming from precise SLAs have to be met. This talk provides an overview of past and ongoing research carried out at Bell Labs on these challenging issues. The continuous evolution of computation and communication technologies is causing a paradigm shift in our own idea of computing.

Indeed, the widespread availability of broadband connections is simply leading to the end of the Personal Computer era, marking the beginning of a new era where computing is mostly distributed. Not only do users delegate heavy-weight and off-line computations to remote servers, but they expect more and more interactive and real-time applications to be readily available on demand, as witnessed by the increasing use of on-line collaborative document editing or video authoring services, for example.

Being a major driver to the Cloud Computing model, a key role in the new computing panorama is being played by virtualization. With the possibility to host multiple virtualized machines seamlessly onto the same physical hardware, the possibility to create virtual network overlays abstracting away from the actual network topology, and the possibility to dynamically live-migrate virtualized machines while they are running, virtualization technologies constitute an enabler for flexible and efficient management of physical resources in data centers.

This talk summarizes key research findings in the area of real-time performance and predictability for virtualized multimedia applications, highlighting some of the research questions that still remain unaddressed.

Furthermore, additional on-going research at Bell Labs that promises to address some of the open questions is shortly presented. By means of experimental results mainly gathered by modifying the Linux kernel, it is shown how it is possible to increase the predictability of real-time applications even on a General Purpose OS like Linux.

This finds interesting applications in a very industrially relevant field like Cloud Computing for multimedia, interactive and real-time applications. By a proper use of scheduling techniques, it is possible to increase the opportunities for server consolidation by achieving a predictable performance of Virtual Machines VMs despite the unpredictability due to co-scheduling of multiple VMs on the same physical host, CPU and core. There are a set of new real-time scheduling algorithms being developed for the Linux kernel, which provide temporal isolation among tasks.

These are based on the specification of the scheduling guarantees needed by the kernel in terms of a budget and a period. However, the currently implemented API seems to be lacking some important features, like a sufficient level of extensibility. This would be required for example for adding further parameters in the future, e.

By means of experimental results mainly gathered by modifying the Linux kernel, it is shown how it is possible to get a tremendous increase in the predictability of real-time applications even on a General Purpose OS like Linux. It is shown how, by a proper use of scheduling techniques, it is possible to increase the opportunities for server consolidation by achieving a predictable performance of Virtual Machines VMs despite the unpredictabilities due to co-scheduling of multiple VMs on the same physical host, cpu, and core.

Over the past years, real-time technologies, traditionally developed for safety-critical systems, have been applied within new application domains, including consumer electronics e. Recently, Information and Communications Technologies ICTs are moving towards a new generation of business models for service provisioning, where connectivity will represent, for users, only the basic point of access to an infinity of online services.

The widespread availability of high-speed network connections puts the foundations of new paradigms of ICT usage and software development, where more and more of the resources needed by users are provisioned remotely. In the Internet of the Cloud Computing era, distributed computing is likely to become much more widespread than today, not only for activities related to batch processing and storage, but also for interactive and soft real-time applications.

To achieve the level of determinism needed to run real-time tasks inside a VM, the approach envisaged is to use well established real-time scheduling techniques, and in particular resource reservations, for scheduling the VMs. In the workshop, the basic real-time reservation model is presented and various appliances are presented, e. Also, the students will learn how to compile, configure, install and make a basic use of the scheduler for real-time and multimedia applications on Linux.

Future computing platforms are expected to present a paradigm shift. The trend has already begun with multi-core systems. However, it is well-known that these systems do not scale well, as keeping a coherent view of the same shared memory across a large number of cores may hinder the expected performance gains. One important problem that needs to be addressed is how to properly schedule the different activities in the system so that all timing constraints are respected.

In order to keep performance under control, especially for real-time applications, it is important to precisely control how computation is distributed across nodes and when it is executed; and how and when messages are enqueued in the network, be it a on-chip network interconnect, or on a classical inter-node network. It is also shown how to compile, configure, install and make a basic use of the scheduler for real-time and multimedia applications on Linux.

